Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/4Xl5ILWh6Bt0ns2iWQm5Y81ZVyE.roa
File: 4Xl5ILWh6Bt0ns2iWQm5Y81ZVyE.roa (raw, json)
Hash identifier: 3CX7dsKgOzYwtHYiOthniVCs4HQa2EnsCM8qayt+Lh0=
Subject key identifier: E1:79:79:20:B5:A1:E8:1B:74:9E:CD:A2:59:09:B9:63:CD:59:57:21
Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc
Certificate serial: 0189C6AC7436E137E93989AD5ECF8F6D5FA0
Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/4Xl5ILWh6Bt0ns2iWQm5Y81ZVyE.roa
Signing time: Sat 05 Aug 2023 17:08:57 +0000
ROA not before: Sat 05 Aug 2023 17:08:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 88.218.105.0/24 maxlen: 24
88.218.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Oct 2023 11:41:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c6:ac:74:36:e1:37:e9:39:89:ad:5e:cf:8f:6d:5f:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc
Validity
Not Before: Aug 5 17:08:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1797920b5a1e81b749ecda25909b963cd595721
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7c:5b:06:d6:49:a8:b1:19:bb:43:38:75:82:
6b:33:b8:d0:b2:d3:c4:4a:7b:6a:e9:e6:e1:53:d0:
86:2f:2c:b6:65:07:3b:6b:08:c6:71:b0:90:b6:94:
82:24:aa:56:92:32:de:0c:af:49:d6:9a:1c:43:31:
e8:0e:df:40:b4:63:9b:fe:7d:4c:93:f1:7f:46:90:
b2:08:c3:33:9e:a4:63:3a:c1:ed:1d:06:22:a7:00:
64:13:ea:84:8f:e9:a1:3a:cf:12:69:44:d0:d8:fb:
b5:fd:22:19:68:24:d3:db:55:4e:45:50:ed:48:9e:
c4:8d:74:0f:2b:56:d0:ed:54:2f:2d:78:42:39:08:
cd:b0:e0:b3:67:cd:6c:39:e3:77:9c:d7:fd:da:00:
20:30:cb:40:63:3b:7f:01:8a:bd:ac:e8:52:1f:13:
b8:85:ea:00:75:56:22:eb:fc:0e:e5:1c:73:b7:13:
03:7e:5d:e6:02:0f:c6:d3:5a:35:ce:f2:f6:0a:29:
fb:c7:ea:09:b3:42:44:f4:b0:ea:92:94:04:13:b1:
6e:48:84:41:78:e1:70:60:57:00:96:a4:3f:05:13:
75:6a:7a:01:2b:90:eb:55:39:85:94:f4:66:1c:39:
b3:a6:f7:00:e1:f5:ea:14:35:0c:2a:26:d5:95:c9:
90:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:79:79:20:B5:A1:E8:1B:74:9E:CD:A2:59:09:B9:63:CD:59:57:21
X509v3 Authority Key Identifier:
keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/4Xl5ILWh6Bt0ns2iWQm5Y81ZVyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.104.0/23
Signature Algorithm: sha256WithRSAEncryption
96:4e:bd:3e:e7:e1:37:23:d4:2d:e3:c9:4b:28:d7:1f:99:54:
73:40:fa:61:5d:01:2b:4d:be:04:e3:33:ed:cd:fe:62:7f:b7:
a6:62:cb:4d:0d:9d:9e:e7:4f:b9:27:1d:41:dd:3f:32:70:50:
43:28:2a:e5:14:44:60:a1:4e:06:4f:24:46:7a:03:63:49:08:
5e:4f:ac:95:c9:34:07:f0:cd:66:3e:58:c9:c6:12:0e:b1:09:
fe:7f:ee:a3:ed:27:f9:01:de:23:05:d0:03:d8:56:f3:21:dc:
db:77:d4:08:3b:12:5d:cc:49:aa:40:70:55:87:12:fe:06:8b:
d8:89:1e:29:1d:a8:96:e2:8e:df:4b:42:73:63:39:e7:5d:5c:
56:49:01:89:ff:aa:0a:1b:c0:fc:cb:07:3c:d8:26:d5:64:67:
03:63:58:70:19:ac:92:ac:b9:b5:ba:6f:9b:46:aa:51:af:7f:
4f:d8:1c:4f:a4:65:f5:f5:28:f8:e5:89:3b:a9:61:40:6d:a0:
80:41:4f:50:4f:13:4c:6b:6b:bc:a2:db:36:a6:6a:dd:d9:72:
3b:2d:a2:3e:78:4f:03:9c:1f:82:00:05:0b:0c:59:65:94:8f:
09:da:dc:75:f6:d0:80:1c:87:37:be:4e:5a:bd:29:78:85:26:
45:69:c7:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:01 2024 by rpki-client on console-fra.rpki-client.org